(19) 



(12) 



Europaisches 
Patentamt 



European 
Patent Office 



Office europeen 
des brevets 



(11) EP 1 950 920 A1 

EUROPEAN PATENT APPLICATION 



(4J) 


Date of publication: 


/C H \ | n t fl • 

\o i ) mi oi.. 




oft f)7 9ftnft Rullckfin OfinR/^1 


H04L 12/S6< 200601 > H04I ?Q/nfi( 200601 ) 


io-\ \ 
(21) 


Application number: 08155546.8 




(22) 


Date oi Tiling. 09.04.1 999 




(84) 


Designated Contracting States: 


• Rundquist, William A. 




AT BE CH CY DE DK ES Fl FR GB GR IE IT LI LU 


Fremont, California 94536 (US) 




MC NL PT SE 


• Shulman, Kenneth A. 






Livingston, New Jersey 07039 (US) 


(30) 


Priority: 14.04.1998 US 60520 








(74) Representative: Bebbington, Nicholas Paul 


(62) 


Document number(s) of the earlier application (s) in 


Beck Greener 




accordance with Art. 76 EPC: 


Fulwood House 




99917386.7/1 070 436 


12 Fulwood Place 






GB-London WC1 V 6HR (GB) 


(71) 


Applicant: Corps of Discovery Patent Holding LLC 






Bellevue, WA 98005 (US) 


Remarks: 






This application was filed on 01 -05-2008 as a 


(72) 


Inventors: 


divisional application to the application mentioned 


• 


Golden, Michael E. 


under INID code 62. 




Pleasanton, California 94588 (US) 





(54) Method and apparatus for providing guaranteed quality of service in a local or wide area 
network 



O 
CM 
O) 

o 

LO 
O) 



(57) A method and apparatus for adapting existing 
packet-switched LAN infrastructures (e.g. packet- 
switched Ethernet) so as to be able to provide reserved- 
bandwidth virtu a I -circuit switching services in addition to 
their conventional capabilities. Acentralized control point 
is incorporated within the infrastructure, preferably via a 
firmware upgrade to an existing enterprise-class switch, 
that maintains a map of paths between endstations in 
the network, as well as the bandwidth capabilities of all 
links and switches along the paths. When a virtual circuit 
connection between endstations is requested, the cen- 
tralized control point determines whether the requested 
bandwidth is available all along the path. If so, the re- 
sources along the path are reserved for the connection. 
Existing switches in the LAN infrastructure are adapted 
to give priority to packets belonging to the connection, 
thereby providing the desired QoS for that connection. 
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Description 

BACKGROUND OF THE INVENTION 

1. Field of the Invention 

[0001] The present invention relates to a method and 
apparatus for providing guaranteed quality of service 
(QoS) in a local or wide area network, and more partic- 
ularly, to a technique for adapting an existing packet- 
switched infrastructure so that on-demand reserved- 
bandwidth virtual circuit connections with guaranteed 
QoS between any endstations in the network can be es- 
tablished. 

2. Description of the Related Art 

[0002] Certain standard and proposed standards are 
known collectively in the art as H.323 "umbrella" stand- 
ards. These standards propose methods for managing 
multimedia "connections" between endpoints and 
through network elements on IP networks. These stand- 
ards define a method for managing certain classes of 
switched connections of varying bandwidth and levels of 
quality-of-service across IP networks. However, H.323 
does not of itself define or provide any mechanism that 
wil I cause existi n g switch es withi n a packet-switched Eth - 
ernet network to be able to provide reserved-bandwidth 
switched virtual circuits without hardware modification of 
those switches. 

[0003] Several conventional approaches attempt to 
achieve reserved- bandwidth virtual circuits across pack- 
et-switched networks. However, these approaches have 
notorious disadvantages. For example, Asynchronous 
Transfer Mode (ATM) switching has been proposed as 
a means of providing such reserved-bandwidth virtual 
circuits. However, ATM is not compatible with conven- 
tional Ethernet infrastructures, and so adapting an exist- 
ing Ethernet network for ATM requires significant capital 
expense in deploying an entirely new switching infra- 
structure. 

[0004] Meanwhile, simple protocol-based approaches 
have been suggested in the art such as resource reser- 
vation protocol (RSVP). However, such approaches re- 
quire massive standards acceptance throughout the in- 
dustry before large scale services can be deployed. 
Moreover, RSVP does not provide centralized mecha- 
nisms for accounting for and managing bandwidth utili- 
zation. Further, RSVP can not guarantee that the band- 
width requested will be maintained from end-to-end on 
virtual circuit connections established through multiple 
switches. For details regarding RSVP, see generally, R. 
Braden et al., RFC 2205, Network Working Group, Sep- 
tember 1997. 

[0005] What is needed in the art, therefore, is an overall 
solution to the above-mentioned problems. The present 
invention fulfills this need. 



SUMMARY OF THE INVENTION 

[0006] Accordingly, an object of the present invention 
is to provide a means for converting existing packet- 
5 switched networks into networks that can simultaneously 
support both conventional packet-switched services and 
virtual circuit switching services with reserved bandwidth 
and QoS. 

[0007] Another object of the present invention is to pro- 

10 vide a meansfor converting existing packet-switched net- 
works into networks that can simultaneously supportboth 
conventional packet-switched services and virtual circuit 
switching services solely through firmware modifications 
of existing switches in the networks. 

15 [0008] Another object of the present invention is to pro- 
vide a means for linking multiple switches into a virtual 
circuit switched network that is capable of working com- 
patibly with, but does not require, H.323 standards for 
creating end-to-end switched virtual circuit connections. 

20 [0009] Another object of the present invention is to pro- 
vide a means for linking multiple switches into a virtual 
circuit switched network that is capable of managing 
guaranteed bandwidth and QoS switched circuit connec- 
tions for all classes of IP traffic (e.g. UPD, TCP, FTP, 

25 http, etc.) with orwithout H.323 protocols ordevices being 
involved. 

[0010] Another object of the present invention is to pro- 
vide a means for linking multiple switches into a virtual 
circuit switched networkthat is capable of providing gate- 
so keeper and gateway functions for interoperating and in- 
terconnecting with other physical or virtual circuit 
switched networks (for all classes of IP traffic) with or 
without reserved bandwidth. 

[001 1] Another object of the present invention is to pro- 

35 vide a means for linking multiple switches into a virtual 
circuit switched networkthat is capable of providing real- 
time routing services of broadband circuit requests based 
on available bandwidth and bandwidth priorities in spe- 
cific switches that are part of a larger network. 

40 [0012] Another object of the present invention is to pro- 
vide a means for linking multiple switches into a virtual 
circuit switched network that is capable of providing bill- 
ing, policy, settlements, security, provisioning, failure and 
performance management control and data, etc. 

45 [0013] The present invention achieves these objects 
and others. According to one aspect, existing packet- 
switched LAN infrastructures (e.g. packet-switched Eth- 
ernet) are adapted so as to be able to provide reserved- 
bandwidth virtual -circuit switching services in addition to 

50 theirconventional capabilities. Acentralized control point 
is incorporated within the infrastructure, preferably via a 
firmware upgrade to an existing enterprise-class switch, 
that maintains a map of paths between endstations in 
the network, as well as the bandwidth capabilities of all 

55 links and switches along the paths. When a virtual circuit 
connection between endstations is requested, the cen- 
tralized control point determines whether the requested 
bandwidth is available all along the path. If so, the re- 
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sources along the path are reserved for the connection. 
Functional capabilities within existing switches in the LAN 
infrastructure are upgraded (preferably via firmware 
modifications) to be responsive to such reservation re- 
quests from the centralized control point and to thereafter 
give priority to packets belonging to the connection, 
thereby providing the desired QoS for that connection. 
[001 4] The present invention thus solves longstanding 
problems encountered with other conventional ap- 
proaches to providing "clear channel" non-contending 
virtual circuit connections of arbitrary bandwidth (often 
described as guaranteed quality- of -service (QoS) i.e. 
guaranteed bit rate). Importantly, by using existing pack- 
et-switched Ethernet and/or Internet Protocol (IP) based 
local and/or wide area and network technologies, mas- 
sive change-out of existing LAN or WAN switching or 
transport infrastructures is not required. 

BRIEF DESCRIPTION OF THE DRAWINGS 

[001 5] These and other objects and advantages of the 
present invention will become apparent to those skilled 
in the art after considering the following detailed specifi- 
cation, together with the accompanying drawings where- 
in: 

Figure 1 illustrates a typical LAN infrastructure 
adapted for virtual circuit QoS services in accord- 
ance with the principles of the invention; 
Figure 2 illustrates a signaling network in a typical 
LAN infrastructure adapted in accordance with the 
principles of the invention; 

Figure 3 is a functional block diagram of an Enter- 
prise Control Point in a LAN infrastructure such as 
that illustrated in Figure 1 ; 

Figure 4 is a functional block diagram of a switch 
adapted for use in an upgraded LAN infrastructure 
such as that illustrated in Figure 1 ; 
Figure 5 is a functional block diagram of another em- 
bodiment of a switch adapted for use in an upgraded 
LAN infrastructure such as that illustrated in Figure 1 ; 
Figure 6 is a functional block diagram of an endsta- 
tion adapted for use in an upgraded LAN infrastruc- 
ture such as that illustrated in Figure 1 ; 
Figure 7 illustrates an implementation of a LAN in- 
frastructure adapted for virtual circuit connections in 
accordance with the principles of the invention; 
Figure 8 is a functional block diagram of an endsta- 
tion adapted for use in an upgraded LAN infrastruc- 
ture such as that illustrated in Figure 7; and 
Figure 9 illustrates several possible inte rope rations 
of a LAN adapted in accordance with the principles 
of the invention with other networks and infrastruc- 
tures. 



DETAILED DESCRIPTION OF THE PREFERRED EM- 
BODIMENTS 

[0016] Figure 1 illustrates a typical LAN adapted for 
5 providing guaranteed QoS in accordance with the prin- 
ciples of the invention. Although the invention will be pri- 
marily described below with reference to a LAN infra- 
structure using Ethernet-based packet-switching proto- 
cols, it will be understood by those skilled in the art that 
10 the principles of the invention are easily extended to WAN 
infrastructures using Ethernet and/or IP-based packet 
switching protocols. 

[0017] As shown in Figure 1 , the typical LAN includes 
a first campus 1 00-1 and a second campus 1 00-2. Each 
15 campus 100 has a plurality of end stations connected 
together with links and switches. More particularly, each 
campus 1 00 includes at least one workgroup switch 1 02 
to which are connected endstations such as workstations 
1 04 and servers 1 06 via ports 1 08 and links 1 1 0. Work- 
20 group switch 1 02 is preferably a flash memory upgrada- 
ble switch such as a workgroup level Catalyst LAN switch 
from Cisco Corp. of San Jose, CA. Workstations 1 04 and 
servers 1 06 are standalone processing units having Eth- 
ernet network interface cards (NICs) such as Fast Ether- 
25 Link XL or EtherLinkXL NICs from 3 Com Corp. of Santa 
Clara, CA, for example. Links 110 are, for example, 10 
Mbps Ethernet links carried over Category 3 compliant 
unshielded twisted-pair (UTP) cabling. Links 1 1 0 can al- 
so be fast Ethernet or Gigabit Ethernet links, depending 
30 on bandwidth needs, particularly for endstations such as 
servers 106. 

[0018] Multiple workgroup switches 102 are connected 
via links 1 12 to intermediate switch 1 14 having ports 116. 
Intermediate switch 1 1 4 is also preferably aflash memory 
35 upgradable siwtch such as an intermediate level Catalyst 
LAN switch from Cisco Corp., for example. 
[0019] Intermediate switches 114 are connected via 
uplinks 1 18 to enterprise switch 120, which links the cam- 
puses together. Enterprise switch 120 is an enterprise- 
40 class switch, such as enterprise level Catalyst LAN 
switch from Cisco Corp, for example. Enterprise switch 
120 includes ports 122, one or more of which may be 
connected to a router 1 24 that connects the LAN to other 
networks, the Internet, etc. 
45 [0020] The number and type of switches and campus- 
es deployed in a given LAN depends on the number of 
endstations and their physical separation. Accordingly, 
it should be apparent that there may be only one campus 
and no intermediate switches or enterprise switches at 
50 all, or there may be multiple campuses and multiple in- 
termediate switches per campus in a given LAN. The 
principles of the invention to apply to all of these possible 
configurations of existing packet-switched Ethernet- 
based LAN infrastructures. 
55 [0021] Further connected to enterprise switch 120 is a 
centralized Enterprise Control Point (ECP) 1 26. Although 
shown separately for clarity, ECP 126 may be an oper- 
able part of enterprise switch 1 20. That is, ECP 1 26 may 
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be a standalone processor and software that communi- 
cates with enterprise switch 120 (or, alternatively, any 
one of workgroup switches 1 02 and intermediate switch- 
es 11 4) as any other endstation in the LAN, or it may be 
incorporated into the existing functionality of enterprise 
switch 120 (or, alternatively, any one of workgroup 
switches 102 and intermediate switches 114) by a 
firmware upgrade, for example. Importantly, ECP 126 
provides additional functionality not found in convention- 
al packet-switched environments, which additional func- 
tionality is an aspect of the present invention that will be 
explained in more detail below. 

[0022] As shown in Figure 2, ECP 1 26 communicates 
individually with as many switches and endstations in the 
LAN as have been upgraded to support the additional 
functionality of the present invention. For example, up- 
graded ones ofswitches102, 114, 120 receive bandwidth 
reservation requests from ECP 126 and reply to ECP 126 
with acknowledgments of such requests. Likewise, up- 
graded ones of endstations 104, 1 06 send connect and 
disconnect requests to ECP 126, which responds with 
acknowledgments including grants or denials of such re- 
quests. 

[0023] Communication between the upgraded net- 
work elements and ECP 126 is preferably performed via 
a reserved signaling channel 130. ECP 126 and each 
upgraded switch and endstation are programmedto send 
and recognize certain types of packets as special sign- 
aling packets. Such packets contain, in addition to the 
MAC level addresses of the communicating parties, a 
special predetermined identifier that can be used only by 
ECP 126, upgraded switches and endstations when 
sending signaling packets. This predetermined identifier 
can be a multicast address within the reserved "router" 
multicast group, or some kind of datagram protocol, for 
example. By programming each upgraded element to 
send and be responsive to packets having this predeter- 
mined identifier, signaling traffic can always be distin- 
guished from other LAN trafficby the upgraded elements, 
thereby reserving a critical pathway through the network 
for signaling between them. 

[0024] It should be noted that signaling channel com- 
munications regarding the guaranteed bandwidth and 
QoS services of the present invention could be compat- 
ible with H.323 defined standards. However, such stand- 
ards need not be employed. Moreover, the present in- 
vention can extend such guaranteed bandwidth and QoS 
services to all classes of traffic that can be carried across 
the packet-switched Ethernet LAN, whether or not H.323 
protocols or devices are involved. 
[0025] It should be further noted that the guaranteed 
bandwidth and QoS services of the present invention can 
be extended to selected ones of, or all, endstations in a 
packet-switched LAN. That is, the additional functionality 
can be extended to as many endstations as desired, by 
providing an ECP and firmware upgrades or replacement 
switches for as many of the existing switches of the LAN 
as desired. Not all the switches need be upgraded, with 



the result, however, that the guaranteed bandwidth and 
QoS services of the present invention will not be extend- 
ed to endstations connected to those switches. Likewise, 
not all endstations connected to upgraded switches need 

5 be upgraded. 

[0026] Figure 3 further illustrates the functionality pro- 
vided by ECP 126. As shown, ECP 126 includes a sign- 
aling interface function 202, a path/device discovery 
function 204, a connection controllerfunction 206, and a 

10 connection monitor function 208. 

[0027] Signaling interface function 202 provides the 
ability to communicate with switches 102, 114, 120 and 
endstations 1 04, 1 06 via the reserved signaling channel. 
Signaling interface function 202 monitors for signaling 

15 packets received from switches 1 02, 114, 1 20 and end- 
stations 104, 106 and forwards them to the appropriate 
function within ECP 1 26. Signaling interface function 202 
also handles sending signaling packets to switches 1 02, 
114, 120 and endstations 104, 106 in accordance with 

20 commands by functions within ECP 126. 

[0028] Path/device discovery function 204 learns what 
network elements and paths exist within the LAN and 
maintains lists of them in network elements registry 210 
and path list 21 2. The network elements include endsta- 

25 tions and switches and the interfaces between them (e.g. 
switch ports). Information maintained by path/device dis- 
covery function 204 for each network element includes 
their respective MAC addresses and bandwidth capacity. 
Path/device discovery function 204 also maintains a list 

30 of all possible paths between each of the endstations in 
the LAN. The paths include each switch and each port 
thereof through which data packets between the endsta- 
tions must pass. The list of possible paths is preferably 
ordered from paths having the least number of hops to 

35 those having the most. In some cases, of course, such 
as with endstations connected to the same switch, there 
will only be possible path between the endstations. 
[0029] Path/device discovery function 204 can fill in 
the information in network elements registry 21 0 and path 

40 list 21 2 as follows. When ECP 1 26 is initialized, it broad- 
casts a signaling message requesting all upgraded 
switches and endstations to identify themselves (e.g. re- 
turn a reply message including their MAC address). For 
each identified switch and endstation, ECP 1 26 then que- 

45 ries them individually to learn their configuration and/or 
bandwidth capacities, thus completing the information in 
network elements registry 2 1 0. The bandwidth capacities 
includes the overall bandwidth capacity of the switch or 
endstation, the bandwidth capacity of each switch port, 

50 and the bandwidth capacity of links between switches 
and/or endstations. 

[0030] Path/device discovery function 204 then fills in 
the information in path list 212 by asking each switch to 
return their individual cached maps. From this informa- 
55 tion, path/device discovery function can build paths be- 
tween each upgraded endstation in the LAN that is con- 
nected via a completely upgraded path in the network to 
another upgraded endstation. 
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[0031] Thereafter, path/device discovery function 204 
maintains the information in network elements registry 
210 and path list 212 by periodically sending queries to 
each identified switch and endstation. Moreover, when 
a new or upgraded switch or endstation is added to the 
network, that element can register with path/device dis- 
covery function 204. 

[0032] A number of alternatives to the path/device dis- 
covery function 204 as implemented above should be 
noted. For example, the function can be performed by 
an offline process, or may be manually performed by a 
system administrator, with results of such offline or man- 
ual processing being stored in network elements registry 
210 and path list 21 2. Moreover, only one path between 
each endstation need be stored. As a further alternative, 
the path can be determined at the time a request for a 
connection between endstations is received. 
[0033] Connection controller function 206 is respon- 
sive to requests for virtual circuit connections and dis- 
connections from endstations 104, 106 received via sig- 
naling interface function 202. In response, it causes sig- 
naling interface function 202 to send acknowledgements 
including grants or denials of such requests to endsta- 
tions 104, 106, and issues commands to set up or tear 
down a bandwidth reservation to switches 1 02, 1 1 4, 1 20. 
[0034] More specifically, a request for a virtual circuit 
connection includes the endstation making the request 
(e.g. its MAC address), the endstation to which a re- 
served connection is requested (e.g. its MAC address), 
and the bandwidth and/or quality of service requested. 
ECP 126 may include functionality for resolving logical 
endstation identifiers with their corresponding physical 
addresses within the network. 

[0035] When such a request for a virtual circuit con- 
nection is received, connection controller function 206 
looks up the list of available paths between the endsta- 
tions of the requested connection in path list 21 2. It then 
determines the overall capacity of the path by determin- 
ing whether the minimum bandwidth available through 
each link, switch, switch port and endstation in the path, 
as stored in network elements registry 21 0, will be suffi- 
cient to fulfill the bandwidth and/or quality of service re- 
quested for the connection. Connection controller func- 
tion 206 reduces the bandwidth available through each 
link, switch, switch port and endstation in the path, and 
thus the overall capacity of the path, in accordance with 
bandwidth consumed by currently existing connections 
in connections list 216, which list is maintained by con- 
nection controller function 206 as connections are estab- 
lished and torn down. 

[0036] The bandwidth available through each link, 
switch, switch port and endstation may be further re- 
duced by rules established in policies list 21 4. Such rules 
may include preserving a certain amount of bandwidth 
in a link for normal network traffic, allowing certain end- 
stations to have priority for reserved bandwidth connec- 
tions over other endstations, and the like. Such rules may 
even be adjusted dynamically by time-of-day, etc. Poli- 



cies list 214 is preferably established in advance when 
ECP 126 is initialized, by a system administrator for ex- 
ample. 

[0037] If the overall capacity of the entire path is not 

5 sufficient for the bandwidth required by the requested 
connection, the next path in the list is checked, and on 
to the end of the list. If no path that can fulfill the request 
exists, the request is denied and a message to that effect 
is sent to the requesting endstation. 

w [0038] If an available path can provide the requested 
bandwidth forthe connection, connection controllerfunc- 
tion 206 "rings" the requested other endstation of the 
connection and waits for an answer. If the endstation 
agrees to the connection, connection controller proceeds 

15 to establish the connection. Specifically, for the best 
available path that can fulfill the requested connection, 
connection controller function 206 sends a bandwidth 
reservation to each switch 1 02, 1 1 4, 1 20 in the path. The 
reservation includes the source and destination of the 

20 connection (e.g., the source and destination MAC ad- 
dresses of the endstations), and the desired bandwidth 
in packets per second, for example. Connection control- 
ler function 206 then waits for an acknowledgment from 
each switch 102, 1 14, 120 to which a reservation request 

25 was sent. When all such acknowledgments are received 
via signaling interface function 202, connection controller 
function 206 issues a connection granted message to 
the endstations involved in the requested connection, 
and updates the list of existing connections in connec- 

30 tions list 21 6. If a predetermined time elapses before all 
acknowledgments are received, connection controller 
function issues a connection refused message to the re- 
questing endstation, and bandwidth release messages 
to each switch 102, 114, 120 to which a reservation re- 

35 quest was sent. 

[0039] When a disconnection request is received via 
signaling interface 202, connection controller 206 finds 
the connection in connections list 216, updates the list, 
and sends bandwidth release messages to each switch 

40 102, 114, 120 involved in the connection, as well as a 
disconnection notice to the other party in the connection. 
[0040] Connection monitor208 maintains apermanent 
list of connections in connection records 218. Simulta- 
neously with updating connections list 216, connection 

45 controller 206 notifies connection monitor 208 with the 
endstations and network elements involved in the con- 
nection and the bandwidth reserved forthe connection. 
Based on this information, connection monitor 208 cre- 
ates records that show the elapsed time of the connec- 

50 tion, the parties involved, and the resources used. Such 
records can be used for billing and resource manage- 
ment, for example. 

[0041] It should be further noted that for clarity, the 
above discussion has assumed only two endstation par- 
55 ticipants in a reserved virtual circuit connection. Howev- 
er, it should be apparent to those skilled in the art that 
the principles of the invention are applicable to reserved 
virtual circuit connections for three or more endstation 
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participants. 

[0042] Figure 4 further illustrates the additional func- 
tionality provided in a switch 1 02, 1 1 4, 1 20 that has been 
upgraded in accordance with the principles of the inven- 
tion. As shown, this includes reservation interface func- 
tion 230 and connection pairs list 232, in addition to en- 
hanced existing functionality provided by switch engine 
234 and switch table 236. 

[0043] Conventional switches include switch engine 
functions for forwarding packets according to conven- 
tional techniques. Such conventional techniques include 
maintaining a table that correlates addresses (typically 
MAC addresses) of endstations connected thereto with 
the ports by which they are connected. When a packet 
is received at a port of the switch, the conventional switch 
engine "cuts into" the packet to obtain the destination 
address in the packet header forwards the packet to the 
corresponding port for that address stored in the table. 
Conventional switches may also include functionality for 
updating the table when a packet from an unknown end- 
station is received, and broadcasting or forwarding up a 
packet with an unknown destination endstation. 
[0044] Such conventional techniques must be en- 
hanced for the switch to implement the virtual circuit serv- 
ices of the present invention. Accordingly, switch 102, 
114, 120 includes an enhanced switch engine 234 that 
makes forwarding decisions based on the conventional 
switch table 236 as well as a new connection pairs list 
232. Moreover, switch 102, 1 14, 120 includes additional 
functionality in the form of reservation interface function 
230. The effect of the enhanced functionality is thatswitch 
102, 114, 120 gives higher priority to packets belonging 
to reserved virtual circuit connections than to other pack- 
ets contending for access to the same ports as needed 
by the reserved virtual circuit connections, thereby guar- 
anteeing the desired quality of service for the connec- 
tions. 

[0045] Reservation interface function 230 receives 
bandwidth reservation requests from ECP 126 via the 
reserved signaling channel 130. Such requests include, 
for example, the MAC addresses of the endstations in- 
volved in the virtual circuit connection, as well as the de- 
sired bandwidth, in packets per second for example. Up- 
on receipt of such a request, reservation interface func- 
tion 230 stores the addresses and desired bandwidth in 
connection pairs list 232 and sends an acknowledgment 
to ECP 126. Reservation interface function 230 also re- 
ceives bandwidth reservation release requests from ECP 
126 containing, for example, the MAC addresses of the 
endstations involved in the virtual circuit connection that 
is to be released. Upon receipt of such a request, reser- 
vation interface function 230 deletes the information in 
connection pairs list 232 corresponding to the released 
connection and sends an acknowledgment to ECP 126. 
[0046] Enhanced switch engine 234 performs its con- 
ventional functions of forwarding packets between ports 
of the switch in accordance with addresses in the packet 
headers and the contents of switch table 236. In accord- 



ance with the principles of the invention, however, en- 
hanced switch engine 234 furthercompares the address- 
es in the packet headers with the addresses contained 
in the reserved connection pairs list 232. Specifically, if 

5 the source and destination addresses of an incoming 
packet match both addresses of one of the address pairs 
stored in connection pairs list 232, the packet is forward- 
ed to the port associated with the destination address, 
which port is designated by switch table 236. Meanwhile, 

10 if the port designated by switch table 236 for one address 
of an incoming packet matches a port designated by 
switch table 236 for any of the stored addresses of end- 
stations involved in a reserved virtual circuit connection, 
but if both addresses of the incoming packet do not match 

15 the corresponding address pair stored in connection 
pairs list 232, the packet is dropped (unless it is a sign- 
aling packet). 

[0047] As an alternative, if the switch maintains sepa- 
rate port queues for priority traffic, enhanced switch en- 
20 gine 234 can forward reserved connection packets to 
high priority queues, while dropping orforwarding to low- 
er priority queues those packets which contend for ac- 
cess to ports involved in reserved connections. 
[0048] Figure 5 illustrates another embodiment of the 
25 additional functionality provided in a switch 1 02, 1 1 4, 1 20 
upgraded in accordance with the principles of the inven- 
tion. In this example, the upgraded switch further includes 
bandwidth monitor function 238 and bandwidth con- 
sumption table 240. 
30 [0049] In this example, rather than immediately drop- 
ping packets that are contending for access to the same 
port reserved for access by packets belonging to an es- 
tablished virtual connection, additional processing is per- 
formed. Each time a packet belonging to an established 
35 virtual connection is forwarded to the appropriate port, 
enhanced switch engine 234 notifies bandwidth monitor 
function 238, which updates the actual bandwidth con- 
sumed by that connection, for example, by maintaining 
a count of packets forwarded in a predetermined time 
40 interval. 

[0050] Bandwidth monitor function 238 also knows or 
has means of determining the total bandwidth capacity 
of each port (and/or its associated link) of the switch. 
When an incoming packet vies for access to a port re- 
45 served for an established virtual connection, switch en- 
gine 234 notifies bandwidth monitor function 238, which 
determines whether the port (and/or its associated link) 
has any excess bandwidth available (e.g. whether the 
actual bandwidth consumed by that connection is less 
50 than the total bandwidth capacity of that port and/or link 
by a predetermined margin). Bandwidth monitorfu notion 
238 sends the answer back to switch engine 234, which 
either drops or forwards the packet accordingly. Band- 
width monitor function 238 thus allows normal traffic to 
55 continue along the same path with virtual circuit connec- 
tions as long as it doesn't reduce the QoS desired for the 
virtual circuit connection. 

[0051] Moreover, bandwidth monitor function 238 
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could monitor the actual bandwidth consumed by each 
reserved virtual circuit connection versus their reserved 
bandwidth. If the actual bandwidth of a virtual circuit con- 
nection exceeds the bandwidth reserved, bandwidth 
monitorfunction 238 could notify enhanced switch engine 
234, which could either drop further packets for that con- 
nection, or send a message via signaling channel 130 
notifying ECP 126 that the reserved bandwidth is being 
exceeded. ECP 126 could then instruct the offending 
endstation(s) to throttle back on packet throughput. Like- 
wise, bandwidth monitorfunction 238 could detect acon- 
dition where the reserved and/or actual bandwidth for a 
given connection could be increased, and cause a mes- 
sage to be sent to ECP 126 to that effect. If the excess 
capacity condition exists throughout the path, ECP 126 
could instruct the participants in that connection that they 
can increase their throughput. 

[0052] It should be notedthat virtual circuit connections 
can be reserved based not only on the MAC addresses 
of the participating endstations, but also on layer 3 ad- 
dresses such as IP addresses, or even protocols, thus 
permitting the adapted switches in the network to dis- 
criminate between network traffic attributable to different 
processes on the same machine. Such additional dis- 
crimination functionality would require additional 
processing capacity which may not be available on lower- 
level switches, however. 

[0053] Figure 6 further illustrates one example of the 
software load on a workstation 1 04 adapted for the virtual 
circuit services according to the present invention. As 
shown, it includes a web browser 250, a browser plug- 
in application 252, a daemon process 254, a user inter- 
face process 256, and a signaling interface process 258. 
The above processes are operable within a common op- 
erating system such as Windows 95 from Microsoft Corp. 
of Redmond, WA, for example. 

[0054] Web browser 250 is preferably a Java-capable 
browser such as NetScape Communicator 4.0 from Net- 
Scape Communications Corp. of Mountain View, CA, for 
example. Daemon process 254 provides the functionality 
needed to take advantage of the virtual circuit services 
according to the present invention, and is preferably in- 
stantiated on workstation 1 04 when it is powered on. User 
interface process 256 is responsible for responding to 
user inputs from I/O devices attached to workstation 1 04 
(e.g. keyboard and mouse), and for drawing objects on 
a video display associated with the workstation. To en- 
able browser 250 to handle URLs unique to the virtual 
circuit services of the present invention, browser 250 is 
configured with plug-in application 252, whose main func- 
tion isto notify daemon process 254 when a virtual circuit 
connection is being requested from the browser. Signal- 
ing interface process 258 receives requests for partici- 
pation in, or termination of, a virtual circuit connection 
from ECP 126 via signaling channel 130 and the work- 
station's NIC and forwards them to daemon process 254 
upon receipt, and also sends requests for origination or 
termination of virtual circuit connections to ECP 126 upon 



command from daemon process 254. 
[0055] Details regarding creating processes under a 
common operating system such as Windows 95 and con- 
figuring browser plug-in applications responsive to spe- 
5 cific URLs are believed to be well understood in the art, 
and so such details will not be presented here so as not 
to obscure the invention. 

[0056] When workstation 1 04 is powered on, daemon 
process 254 is instantiated and starts up signaling inter- 
na face process 258. Daemon process 254 then waits for 
messages from eitherthe browser 250 (via browser plug- 
in application 252), requesting that a virtual connection 
be initiated or terminated, or from signaling interface 
process 258, indicating that another endstation is re- 
's questing that workstation 1 04 participate in, or wishes to 
terminate a virtual circuit connection. 
[0057] For example, when a user is running browser 
250 and desires to originate a virtual circuit connection, 
a web page that contains a directory of network users is 
20 accessed and the directory is displayed in the browser 
window. The directory contains a list of network users, 
whose names are preferably shown as hypertext with 
links having URLs that are unique to the virtual circuit 
services of the present invention. When the user selects 
25 a party or parties from the list, browser 250 invokes plug- 
in application 252 to handle the request, and plug-in ap- 
plication 252 in turn notifies daemon process 254. Dae- 
mon process 254 invokes user interface process 256, 
which draws a dialog box asking the user to specify what 
30 kind of connection is desired (e.g., audio only, data only, 
teleconference, etc.). This information is returned to dae- 
mon process 254 and formatted into a connection re- 
quest that is forwarded to signaling interface 258, which 
sends the request to ECP 126. 
35 [0058] If the connection can not be established (e.g., 
not enough bandwidth available, or the other participant 
does not agree to the con nection) , ECP 1 26 notifies work- 
station 104 to that effect via signaling channel 130, which 
message is received by signaling interface process 258. 
40 Signaling interface process 258 forwards the message 
to daemon process 254, which in turn commands user 
interface process 256 to paint a message on the work- 
station display informing the userthatthe requested con- 
nection was refused. 
45 [0059] If the connection can be established, ECP 126 
notifies workstation 1 04 to that effect via signaling chan- 
nel 1 30, which message is received by signaling interface 
process 258. Signaling interface process 258 forwards 
the message to daemon process 254, which in turn com- 
50 mands user interface process 256 to paint a message 
on the workstation display informing the user that the 
requested connection was granted. Additional function- 
ality can also be built in to launch an application desired 
forthat connection (such as a video or audio conference). 
55 User interface process 258 can also paint an action box 
on the screen that permits the user to terminate the con- 
nection when desired. When such an action is desired 
by the user, the answer is collected by user interface 
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process 256 via user I/O devices and relayed to the dae- 
mon process 254. Daemon process 254 then formats an 
answer message which is sent to ECP 1 26 via signaling 
interface process 258 and signaling channel 130. 
[0060] Meanwhile, for connection requests sent to 
workstation 104 from another network endstation, these 
are received by daemon process 254 via signaling inter- 
face process 258. When such requests are received, 
daemon process 254 activates user interface process 
256, which in turn paints a dialog box on the workstation's 
video display, querying the user whether to participate in 
the connection. The answer is collected by user interface 
process 256 via user I/O devices and relayed to the dae- 
mon process 254. Daemon process 254 then formats an 
answer message which is sent to ECP 1 26 via signaling 
interface process 258. Similar processing is performed 
for connection termination requests from other endsta- 
tions. 

[0061] Although the process of requesting a virtual cir- 
cuit connection has been described above with reference 
to the example of a user interface process interacting 
with a user to select a type of connection, it should be 
apparent that many alternatives are possible. For exam- 
ple, additional layers of software can be built into appli- 
cations that automatically request a connection, deter- 
mine the type of connection to be made, and how much 
bandwidth and what quality of service to request for such 
connection. 

[0062] Furthermore, the process of responding to re- 
quests for connections can be entirely automatic, as 
could be the case in an endstation such as server 1 06. 
That is, no user interaction need be required to respond 
to requests from network users to log onto or access 
information from server 106. Accordingly, the software 
load on such endstations could be limited to a daemon 
process such as 254 and a signaling interface process 
such as 258. 

[0063] One possible implementation of an existing net- 
work adapted in accordance with the principles of the 
invention will now be described with reference to Figure 
7. In the adapted network as shown, endstations such 
as workstations 1 04 are connected to workgroup switch- 
es 102 by existing cabling. Several workgroup switches 
102 are connected to intermediate switches 1 14 by links 
1 1 2, and intermediate switches 11 4 are connected to en- 
terprise switch 120 by links 1 18. 
[0064] In this implementation, ECP 1 26 provides func- 
tionality akin to a private branch exchange (PBX) in a 
local office ISDN. As further shown in Figure 7, one or 
more workstations 104 are configured with telephones 
280. To supportthis configuration, workstations 104 must 
include a NIC that has a telephone interface. A virtue of 
this implementation is that it adds local office telephony 
within an existing LAN infrastructure without requiring ad- 
ditional cabling or a costly PBX or central office exchange 
service (Centrex). 

[0065] As shown in Figure 8, to support telephony ap- 
plications, workstations 104 further include, in addition 



to the enhanced functionality discussed with reference 
to Figure 6, a telephone interface process 282. Tele- 
phone interface function 282 monitors when a user enters 
a number to dial, and alerts daemon process 254 when 
5 a number is dialed. In response, daemon process 254 
formats a message to send to ECP 126 via signaling 
interface process 258 and signaling channel 130. Such 
a message may be in accordance with standard dialing 
protocols such as Q.931 , for example. Telephone inter- 
na face 282 also performs, in response to commands from 
daemon process 254 according to messages received 
from ECP 126, such standard telephone functions as ring 
and busy signals. 

[0066] Several possible interoperations of an existing 
15 network adapted in accordance with the principles of the 
invention with othertypes of networks and infrastructures 
will now be described with reference to Figure 9. 
[0067] As shown in Figure 9, one possible interopera- 
tion is to provide access to connections in a public 
20 switched telephone network (PSTN) 302, for example, 
ISDN. This extends the virtual circuit connections from 
upgraded endstations within the LAN to wide area end- 
points accessible to PSTN 302. There are several alter- 
native ways to do this. 
25 [0068] As a first alternative, inverse multiplexor 304 is 
provided to de-multiplex trunk (e.g. T1) Iines306 from 
PSTN 302 to individual channels 308 that are attached 
to packet-switched ports of enterprise switch 120. Such 
inverse multiplexors are well known in the art. ECP 126 
30 is further provided with functionality whereby it can "dial- 
up" circuit connections over PSTN 302 in response to 
requests from endstations within the LAN. Once a con- 
nection is established, packets belonging to the connec- 
tion are passed from the requesting endstation within the 
35 LAN to PSTN 302 via enterprise switch 1 20 and inverse 
multiplexor 304. 

[0069] As a next alternative, such virtual switched cir- 
cuit connections can also be handed off to PSTN 302 by 
equipping ECP 126 to inter-operate and communicate 
40 over Signaling System 7 or similar signaling networks, 
well known in the art, to established Service Control 
Points (SCPs) 31 0 within PSTN 302 to manage the end- 
to-end setup of circuit switched connections through the 
ISDN PSTN. This approach is, of course, normally limited 
45 to connections having a bandwidth of one or two bearer 
channels. 

[0070] An other possible inte rope rati on of a LAN adapt- 
ed for virtual circuit connections in accordance with the 
invention is with on-demand broadband connections 
50 such as that described in U.S. Patent Application No. 
08/966,634, the contents of which are incorporated here- 
in by reference. In this case, a premises switch 312 such 
as that described in the afore-mentioned application is 
further provided for managing the aggregation of band- 
55 width necessary for a virtual circuit connection within the 
LAN. Specifically, premises switch 312 controls the ag- 
gregation of bandwidth across multiple individual chan- 
nels 31 6 connectedto enterprise switch 1 20, which band- 
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width is obtained from trunk lines (e.g. T1 lines) 31 4. The 
virtual circuit connection from an endstation within the 
LAN becomes a reserved connection in PSTN 302 via 
the control of a Network Control System Server (NCSS) 
such as that described in the afore-mentioned applica- 
tion. ECP 126 is further provided with additional function- 
ality for communicating with the NCSS to establish re- 
served connections of arbitrary bandwidth from endsta- 
tions within the LAN, across switched WAN connections, 
to another endstation on another LAN. 
[0071] Yet another possible interoperation of a LAN 
adapted for virtual circuit connections in accordance with 
the invention is with IP connections via the Public Internet 
or Intranet31 8 and existing router 1 24. Such connections 
can include I P telephony or other virtual circuit connec- 
tions. Such connections can also include those compat- 
ible with RSVP or other reserved circuit protocols. 
[0072] Although the present invention has been de- 
scribed in detail with reference to the preferred embodi- 
ments thereof, those skilled in the art will appreciate that 
various substitutions and modifications can be made to 
the examples described herein while remaining within 
the spirit and scope of the invention as defined in the 
appended claims. 

[0073] The following numbered clauses on pages 15 
to 27 of the present description correspond to the claims 
of European patent application no. 99917386.7 as filed. 
The claims of the present application as filed, which is 
divided from European patent application no. 
9991 7386.7, can be found on the subsequent pages 28 
to 31 of the specification which begin with the heading 
"CLAIMS". 

1 . An apparatus for establishing a reserved connec- 
tion between first and second endstations in a net- 
work, said apparatus comprising: 

means for identifying a path between said first 
and second endstations, said path including at 
least one switch having afirst port in packet com- 
munication with said first endstation and a sec- 
ond port in packet communication with said sec- 
ond endstation; and 

means for causing said at least one switch to 
forward packets belonging to said reserved con- 
nection between said first and second ports 
along said path with higher priority than packets 
not belonging to said reserved connection. 

2. An apparatus as defined in claim 1 , wherein said 
reserved connection has a required bandwidth, said 
apparatus further comprising: 

means for determining a capacity of said path; 
and 

means for refusing said reserved connection if 
said capacity is less than said required band- 
width. 



3. An apparatus as defined in claim 2, said apparatus 
further establishing a second reserved connection 
between third and fourth endstations in said network, 
said second reserved connection having a second 

5 required bandwidth, at least one of said third and 
fourth endstations being in packet communication 
with a common one of said first and second ports of 
said at least one switch, a second path between said 
third and fourth endstations including said at least 

10 one switch, said apparatus further comprising: 

means for identifying said second path; 
means for determini ng a second capacity of said 
second path; 

15 means for reducing said second capacity in ac- 

cordance with said required bandwidth of said 
reserved connection; and 
means for refusing said second reserved con- 
nection if said reduced second capacity is less 

20 than said second required bandwidth. 

4. An apparatus as defined in claim 2, further com- 
prising: 

25 means for reducing said capacity in accordance 

with rules established for said network. 

5. An apparatus as defined in claim 1 , further com- 
prising: 

30 

means for signaling messages concerning said 
reserved connection, said messages including 
a predetermined identifier to distinguish said 
messages from other network traffic, said sign- 
35 aling means being coupled to said first and sec- 

ond endstations and said at least one switch. 

6. An apparatus as defined in claim 5, further com- 
prising: 

40 

means for receiving a connection request mes- 
sage from one of said first and second endsta- 
tions via said signaling means, said path identi- 
fying means being responsive to said connec- 
ts tion request message; 

means for sending a reservation message to 
said at least one switch via said signaling means 
in accordance with said path identified by said 
path identifying means. 

50 

7. An apparatus as defined in claim 2, further com- 
prising: 

means for signaling messages concerning said 
55 reserved connection, said messages including 

a predetermined identifier to distinguish said 
messages from other network traffic, said sign- 
aling means being coupled to said first and sec- 
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ond endstations and said at least one switch; 
means for receiving a connection request mes- 
sage from one of said first and second endsta- 
tions via said signaling means, said path identi- 
fying means and said capacity determining 5 
means being responsive to said connection re- 
quest message; 

means for sending a reservation message to 
said at least one switch via said signaling means 
in accordance with said path identified by said 10 
path identifying means; and 
means for sending a connection refused mes- 
sage to said one of said first and second end- 
stations via said signaling means responsive to 
said connection refusing means. 15 

8. An apparatus as defined in claim 1, further com- 
prising: 

means for monitoring said reserved connection, 20 
said monitoring means including means for per- 
manently recording details concerning said re- 
served connection. 



tween said first and second ports if said actual 
bandwidth is less than a bandwidth capacity as- 
sociated with said first and second ports by a 
predetermined margin. 

14. An apparatus as defined in claim 10, wherein 
said at least one switch further includes: 

means for monitoring an actual bandwidth con- 
sumed by said reserved connection. 

15. An apparatus as defined in claim 14, wherein 
said at least one switch further includes: 

means for permitting packets not belonging to 
said reserved connection to be forwarded be- 
tween said first and second ports if said actual 
bandwidth is less than a bandwidth capacity as- 
sociated with said first and second ports by a 
predetermined margin. 

16. An apparatus as defined in claim 14, wherein 
said at least one switch further includes: 



9. An apparatus as defined in claim 8, wherein said 
details include one or more of an endstation identifier 
of one or both of said first and second endstations, 
a switch identifier of said at least one switch, a band- 
width of said reserved connection, and an elapsed 
time of said reserved connection. 

1 0. An apparatus as defined in claim 1 , wherein said 
at least one switch includes: 

means for determining whether incoming pack- 
ets belong to said reserved connection; and 
means for forwarding incoming packets be- 
tween said first and second ports in accordance 
with said determination. 

11. An apparatus as defined in claim 10, wherein 
said at least one switch further includes: 

means for dropping incoming packets that do 
not belong to said reserved connection in ac- 
cordance with said determination. 

1 2. An apparatus as defined in claim 1 , wherein said 
at least one switch includes: 

means for monitoring an actual bandwidth con- 
sumed by said reserved connection. 



25 means for alerting said forwarding means if said 

actual bandwidth is greater than a reserved 
bandwidth of said reserved connection, said for- 
warding means forwarding packets belonging to 
said reserved connection between said first and 

30 second ports in further accordance with said 

alert. 

1 7. An apparatus as defined in claim 6, wherein said 
at least one switch includes: 

35 

means for determining whether incoming pack- 
ets belong to said reserved connection in ac- 
cordance with said reservation message; and 
means for forwarding incoming packets be- 
40 tween said first and second ports in accordance 

with said determination. 

1 8. An apparatus as defined in claim 5, wherein at 
least one of said first and second endstations in- 

45 eludes: 

means for sending said connection request 
message via said signaling means. 

50 1 9. A method for establishing a reserved connection 
between first and second endstations in a network, 
said apparatus comprising: 



13. An apparatus as defined in claim 12, wherein 
said at least one switch further includes: 55 

means for permitting packets not belonging to 
said reserved connection to be forwarded be- 



identifying a path between said first and second 
endstations, said path including at least one 
switch having a first port in packet communica- 
tion with said first endstation and a second port 
in packet communication with said second end- 
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station; and 

causing said at least one switch to forward pack- 
ets belonging to said reserved connection be- 
tween said first and second ports along said path 
with higher priority than packets not belonging 5 
to said reserved connection. 

20. A method as defined in claim 19, wherein said 
reserved connection has a required bandwidth, said 
method further comprising: 10 

determining a capacity of said path; and 
refusing said reserved connection if said capac- 
ity is less than said required bandwidth. 

15 

21. A method as defined in claim 20, said method 
further establishing a second reserved connection 
between third and fourth endstations in said network, 
said second reserved connection having a second 
required bandwidth, at least one of said third and 20 
fourth endstations being in packet communication 
with a common one of said first and second ports of 
said at least one switch, a second path between said 
third and fourth endstations including said at least 
one switch, said method further comprising: 25 

identifying said second path; 

determining a second capacity of said second 

path; 

reducing said second capacity in accordance 30 
with said required bandwidth of said reserved 
connection; and 

refusing said second reserved connection if said 
reduced second capacity is less than said sec- 
ond required bandwidth. 35 

22. A method as defined in claim 20, further com- 
prising: 

reducing said capacity in accordance with rules 40 
established for said network. 

23. A method as defined in claim 19, further com- 
prising: 

45 

signaling messages concerning said reserved 
connection to said first and second endstations 
and said at least one switch, said messages in- 
cluding a predetermined identifier to distinguish 
said messages from other network traffic. 50 

24. A method as defined in claim 23, further com- 
prising: 

receiving a connection request message from 55 
one of said first and second endstations, said 
path identifying step being responsive to said 
connection request message; 



sending a reservation message to said at least 
one switch via said signaling means in accord- 
ance with said path identified in said path iden- 
tifying step. 

25. A method as defined in claim 20, further com- 
prising: 

signaling messages concerning said reserved 
connection to said first and second endstations 
and said at least one switch, said messages in- 
cluding a predetermined identifier to distinguish 
said messages from other network traffic; 
receiving a connection request message from 
one of said first and second endstations, said 
path identifying step and said capacity determin- 
ing step being responsive to said connection re- 
quest message; 

sending a reservation message to said at least 
one switch in accordance with said path identi- 
fied in said path identifying step; and 
sending a connection refused message to said 
one of said first and second endstations respon- 
sive to said connection refusing step. 

26. A method as defined in claim 19, further com- 
prising: 

monitoring said reserved connection, said mon- 
itoring step including means for permanently re- 
cording details concerning said reserved con- 
nection. 

27. A method as defined in claim 26, wherein said 
details include one or more of an endstation identifier 
of one or both of said first and second endstations, 
a switch identifier of said at least one switch, a band- 
width of said reserved connection, and an elapsed 
time of said reserved connection. 

28. A method as defined in claim 19, further com- 
prising: 

determining whether incoming packets to said 
at least one switch belong to said reserved con- 
nection; and 

forwarding said incoming packets between said 
first and second ports of said at least one switch 
in accordance with said determination. 

29. A method as defined in claim 28, further com- 
prising: 

dropping said incoming packets that do not be- 
long to said reserved connection in accordance 
with said determination. 

30. A method as defined in claim 19, further com- 
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prising: 

monitoring an actual bandwidth consumed by 
said reserved connection. 

5 

31. A method as defined in claim 30, further com- 
prising: 

permitting packets not belonging to said re- 
served connection to be forwarded between 10 
said first and second ports of said at least one 
switch if said actual bandwidth is less than a 
bandwidth capacity associated with said first 
and second ports by a predetermined margin. 

15 

32. A method as defined in claim 28, further com- 
prising: 

monitoring an actual bandwidth consumed by 
said reserved connection. 20 



between said first and second endstations; 
a switch having a first port in packet communi- 
cation with said first endstation via at least a first 
link, and asecond port in packet communication 
with said second endstation via at least asecond 
link, said path including said switch; 
a signaling channel coupled between said en- 
terprise control point and said switch, said switch 
forwarding packets belonging to said reserved 
connection between said first and second ports 
along said path with higher priority than packets 
not belonging to said reserved connection in ac- 
cordance with a reservation message received 
from said enterprise control point via said sign- 
aling channel when said reserved connection is 
established. 

37. An apparatus as defined in claim 36, wherein 
said reserved connection has a required bandwidth, 
said enterprise control point including: 



33. A method as defined in claim 32, further com- 
prising: 

permitting packets not belonging to said re- 25 
served connection to be forwarded between 
said first and second ports of said at least one 
switch if said actual bandwidth is less than a 
bandwidth capacity associated with said first 
and second ports by a predetermined margin. 30 

34. A method as defined in claim 32, further com- 
prising: 

detecting if said actual bandwidth is greaterthan 35 
a reserved bandwidth of said reserved connec- 
tion, said step of forwarding packets belonging 
to said reserved connection between said first 
and second ports of said at least one switch be- 
ing performed in further accordance with said 40 
detection. 

35. A method as defined in claim 24, further com- 
prising: 

45 

determining whether incoming packets to said 
at least one switch belong to said reserved con- 
nection in accordance with said reservation 
message; and 

forwarding said incoming packets between said 50 
first and second ports in accordance with said 
determination. 



36. An apparatus for establishing a reserved con- 
nection between first and second endstations in a 
network, said apparatus comprising: 



55 



a network elements registry that lists bandwidth 
capacities of elements within said network in- 
cluding said first and second endstations, said 
switch, said first and second ports, and said first 
and second links; 

a connection controllerthat determines a capac- 
ity of said path in accordance with said network 
elements registry, said connection controller re- 
fusing to establish said reserved connection if 
said capacity is less than said required band- 
width. 

38. An apparatus as defined in claim 37, said appa- 
ratusfurtherestablishing a second reserved connec- 
tion between third and fourth endstations in said net- 
work, said second reserved connection having asec- 
ond required bandwidth, at least one of said third 
and fourth endstations being in packet communica- 
tion with a common one of said first and second ports 
of said at least one switch, a second path between 
said third and fourth endstations including said at 
least one switch, said apparatus further comprising: 

a current connection list that maintains informa- 
tion regarding all reserved connections in said 
network, said connection controller determining 
a second capacity of said second path in accord- 
ance with said network elements registry, said 
connection controller reducing said second ca- 
pacity of said second path in accordance with 
said current connection list, said connection 
controller refusing to establish said second re- 
served connection if said reduced second ca- 
pacity is less than said second required band- 
width. 



an enterprise control point that identifies a path 



39. An apparatus as defined in claim 37, further com- 
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prising: 

a policies list that maintains information regard- 
ing rules established for said network, said con- 
nection controller reducing said capacity of said 5 
path in accordance with said policies list. 

40. An apparatus as defined in claim 36, wherein 
said signaling channel comprises messages includ- 
ing a predetermined identifier to distinguish said 10 
messages from other network traffic. 

41. An apparatus as defined in claim 40, wherein 
said enterprise control point includes: 

15 

a signaling interface coupled to said signaling 
channel, said signaling interface receiving a 
connection request message from one of said 
first and second endstations via said signaling 
channel, said enterprise control point identifying 20 
said path in response to said connection request 
message, said enterprise control point sending 
said reservation message in accordance with 
said identified path. 

25 

42. An apparatus as defined in claim 37, wherein 
said signaling channel comprises messages includ- 
ing a predetermined identifier to distinguish said 
messages from other network traffic, said enterprise 
control point further including: 30 

a signaling interface coupled to said signaling 
channel, said signaling interface receiving a 
connection request message from one of said 
first and second endstations via said signaling 35 
channel, said enterprise control point identifying 
said path in response to said connection request 
message, said connection controller determin- 
ing said capacity in response to said connection 
request message, said connection controller 40 
sending said reservation message to said switch 
via said signaling interface in accordance with 
said path identified by said path enterprise con- 
trol point, said connection controller sending a 
connection refused message to said one of said 45 
first and second endstations via said signaling 
interface when said connection controller refus- 
es to establish said reserved connection. 

43. An apparatus as defined in claim 36, wherein 50 
said enterprise control point further includes: 

a connection monitor that permanently records 
details concerning said reserved connection. 

55 

44. An apparatus as defined in claim 43, wherein 
said details include one or more of an endstation 
identifier of one or both of said first and second end- 



stations, a switch identifier of said switch, a band- 
width of said reserved connection, and an elapsed 
time of said reserved connection. 

45. An apparatus as defined in claim 36, wherein 
said switch includes: 

a connection pairs list that stores identifiers of 
said first and second endstations involved in 
said reserved connection; 
a switch table that corresponds said identifiers 
with said first and second ports; 
an enhanced switch engine coupled to said con- 
nection pairs list and said switch table that ex- 
amines incoming packets to said switch and de- 
termines whether said incoming packets belong 
to said reserved connection in accordance with 
said connection pairs list, said enhanced switch 
engine forwarding said incoming packets be- 
tween said first and second ports in accordance 
with said determination and said switch table. 

46. An apparatus as defined in claim 45, wherein 
said enhanced switch engine drops incoming pack- 
ets that do not belong to said reserved connection 
in accordance with said determination. 

47. An apparatus as defined in claim 36, wherein 
said switch includes: 

a bandwidth monitor that monitors an actual 
bandwidth consumed by said reserved connec- 
tion. 

48. An apparatus as defined in claim 47, wherein 
said switch further includes: 

an enhanced switch engine that examines in- 
coming packets to said switch, said bandwidth 
monitor notifying said enhanced switch engine 
if said actual bandwidth is less than a bandwidth 
capacity associated with said first and second 
ports by a predetermined margin, said en- 
hanced switch engine permitting packets not be- 
longing to said reserved connection to be for- 
warded between said first and second ports in 
accordance with said notification. 

49. An apparatus as defined in claim 45, wherein 
said switch further includes: 

a bandwidth monitor that monitors an actual 
bandwidth consumed by said reserved connec- 
tion. 

50. An apparatus as defined in claim 49, wherein 
said bandwidth monitor notifies said enhanced 
switch engine if said actual bandwidth is less than a 
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bandwidth capacity associated with said first and 
second ports by a predetermined margin, said en- 
hanced switch engine permitting packets not belong- 
ing to said reserved connection to be forwarded be- 
tween said first and second ports in accordance with 5 
said notification. 

51. An apparatus as defined in claim 49, wherein 
said bandwidth monitor alerts said enhanced switch 
engine if said actual bandwidth is greater than a re- 10 
served bandwidth of said reserved connection, said 
enhanced switch engine forwarding packets belong- 
ing to said reserved connection between said first 
and second ports in further accordance with said 
alert. is 

52. An apparatus as defined in claim 41, wherein 
said switch includes: 

a reservation interface that receives said reser- 20 
vation message, and updates a connection pairs 
list in accordance with said reservation mes- 
sage; and 

an enhanced switch engine coupled to said con- 
nection pairs list that examines incoming pack- 25 
ets to said switch and determines whether said 
incoming packets belong to said reserved con- 
nection in accordance with said connection pairs 
list, said enhanced switch engine forwarding 
said incoming packets between said first and 30 
second ports in accordance with said determi- 
nation. 

53. A method of uprading an existing packet- 
switched network infrastructure for supporting re- 35 
served connections, said existing infrastructure in- 
cluding at least one switch, and endstations in packet 
communication with ports of said switch, said meth- 
od comprising: 

40 

providing an enterprise control point that main- 
tains a list of paths between said endstations in 
said network infrastructure, and bandwidth ca- 
pacities of network elements within said network 
infrastructure, said network elements including 45 
said switch, said endstations, and said ports; 
providing a reserved signaling channel adapted 
to communicate with said enterprise control 
point, said reserved signaling channel compris- 
ing messages having a predetermined identifier 50 
that distinguish said messages from normal net- 
work traffic; 

upgrading said switch to communicate with said 
enterprise control point via said reserved sign- 
aling channel, said upgraded switch being re- 55 
sponsiveto reservation messages from said en- 
terprise control point whereby said upgraded 
switch causes packets belonging to reserved 



connections to be switched with higher priority 
than packets not belonging to reserved connec- 
tions. 

54. A switch adapted for use in a network supporting 
reserved connections, said network including an en- 
terprise control point that manages said reserved 
connections and a reserved signaling channel for 
signaling messages concerning said reserved con- 
nections, said reserved connections including a first 
reserved connection between first and second end- 
stations in said network, said switch comprising: 

a plurality of ports including a first port adapted 
to provide packet communication with said first 
endstation and a second port adapted to provide 
packet communication with said second endsta- 
tion; 

a reservation interface adapted to receive res- 
ervation requests from said enterprise control 
point via said signaling channel, said reservation 
requests including a first reservation request 
corresponding to said first reserved connection; 
a connection pairs list that stores identifiers of 
endstations involved in reserved connections 
having paths including said switch, said reser- 
vation interface updating said connection pairs 
list in accordance with said first reservation re- 
quest; 

a switch table that corresponds said endstation 
identifiers with ports of said switch; 
an enhanced switch engine that examines said 
endstation identifiers in packets received at said 
ports and forwards packets between said ports 
in accordance with said switch table, said en- 
hanced switch engine further comparing said 
packet endstation identifiers with said connec- 
tion pairs list, said enhanced switch engine for- 
warding packets having endstation identifiers 
corresponding to said first reservation request 
between said first and second ports with higher 
priority than packets having endstation identifi- 
ers that do not correspond to said first reserva- 
tion request. 

Claims 

1 . A system for reserving a path in a packet-switched 
network configured to provide at least best-effort 
packets, comprising: 

a centralized control point (126) operable to 
communicate with the network and to reserve a 
connection between two or more resources in 
the network using a signaling channel (130). 

2. The system of claim 1 , wherein at least one of the 
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two or more resources is a switch. 

3. The system of claim 2, wherein the control point (1 26) 
is configured to receive request information concern- 
ing reserved connections from the switch, to identify 5 
at least one path in the network capable of supporting 

a reserved communication corresponding to the re- 
quest, and to reserve resources along the identified 
path. 

10 

4. The system of claim 1 , wherein the control point (1 26) 
comprises path/device discovery function (204) con- 
figured to build and update a list of network resources 
and paths between the resources. 

15 

5. The system of claim 4, wherein the control point (1 26) 
is configured to initiate and terminate reserved con- 
nections between the resources in response to the 
received request information based on the list of net- 
work resources and paths between the resources. 20 

6. The system of claim 1 , wherein the control point (1 26) 
is operable to establish a reserved connection for a 
packet by sending a bandwidth reservation to at least 
one switch that is in the path to provide a reserved 25 
bandwidth for the connection. 

7. The system of claim 1 , wherein the control point (1 26) 
is operable to initiate and terminate reserved con- 
nections within the network based on a first list of so 
connections within the network and a second list of 
network elements and paths between the endsta- 
tions of the network. 

8. The system of claim 7, wherein the control point (1 26) 
is further operable to determine an overall capacity 
of a first available path of paths in the second list by 
determining from a networkelement registry whether 
a minimum bandwidth available through each link, 
switch, and switch port in the first available path is 
sufficient to fulfill the bandwidth requested for the 
reserved connection. 

9. The system of claim 1 , wherein the control point (1 26) 
comprises a network interface configured to commu- 45 
nicate with a network control system server, wherein 

the network interface is configured to request re- 
served connections in a wide area network (WAN) 
and/or broadband network. 

50 

10. A method, comprising: 



connection using a signaling channel (130). 

1 1 . The method of claim 1 0, wherein at least one of the 
two or more resources is a switch. 

1 2. The method of claim 1 0, further comprising: 

identifying at least one path in the network ca- 
pable of supporting a reserved communication 
corresponding to the request; 

wherein the centralized control point (126) is config- 
ured to receive the predetermined reservation pro- 
tocol packet from the switch and to reserve resourc- 
es along the identified path. 

13. The method of claim 10, wherein the control point 
(126) is operable to initiate and terminate reserved 
connections within the network based on a first list 
of connections within the network and a second list 
of network elements and paths between the endsta- 
tions of the network. 

1 4. The method of claim 1 3, further comprising: 

determining an overall capacity of a first availa- 
ble path of paths in the second list by determin- 
ing from a network element registry whether a 
minimum bandwidth available through each link, 
switch, and switch port in the first available path 
is sufficient to fulfill the bandwidth requested for 
the reserved connection. 



1 5. The method of claim 1 0, further comprising: 

35 

communicating with a network control system 
server through a network interface; 

wherein the network interface is configured to re- 
40 quest reserved connections in a wide area network 
(WAN) and/or broadband network; 
wherein the control point (126) comprises the net- 
work interface. 



receiving, at a centralized control point (126), a 
predetermined reservation protocol packet in- 
cluding a request for a reserved connection; and 55 
communicating with one or more resources, on 
a packet-switched network configured to pro- 
vide at least best-effort packets, to reserve a 
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